FreeBSD 15

FreeBSD 15 — ipsec-tools — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — ipsec-tools — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ipsec-tools — remotely exploitable computational-complexity attack Related CVEs: CVE-2008-3651 CVE-2008-3652 CVE-2016-10396 Upstream summary: Robert Foggia via NetBSD GNATS reports: The ipsec-tools racoon daemon contains a remotely exploitable computational complexity attack […]

Read more
FreeBSD 15 — librsvg — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — librsvg — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: librsvg2 — multiple vulnerabilities Related CVEs: CVE-2015-7557 CVE-2015-7558 CVE-2019-20446 Upstream summary: Librsvg2 developers reports: Backport the following fixes from 2.46.x: Librsvg now has limits on the number of loaded XML […]

Read more
FreeBSD 15 — rubygem-loofah — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — rubygem-loofah — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Loofah — XSS vulnerability Related CVEs: CVE-2018-16468 CVE-2018-8048 CVE-2019-15587 Upstream summary: GitHub issue: This issue has been created for public disclosure of an XSS vulnerability that was responsibly reported by […]

Read more
FreeBSD 15 — pligg — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — pligg — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Pligg CMS — XSS Vulnerability Related CVEs: CVE-2009-4786 CVE-2009-4787 CVE-2009-4788 Upstream summary: Netsparker reports: Proof of Concept URL for XSS in Pligg CMS: Page: groups.php Parameter Name: keyword Parameter Type: […]

Read more
FreeBSD 15 — rubygem-mail — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — rubygem-mail — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: rubygem-mail — multiple vulnerabilities Related CVEs: CVE-2011-0739 CVE-2012-2139 CVE-2012-2140 Upstream summary: rubygem-mail — multiple vulnerabilities Two issues were fixed. They are a file system traversal in file_delivery method and arbitrary […]

Read more
FreeBSD 15 — couchdb — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — couchdb — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: couchdb — information sharing via couchjs processes Related CVEs: CVE-2012-5650 CVE-2017-12635 CVE-2017-12636 CVE-2018-11769 CVE-2018-17188 CVE-2018-8007 CVE-2021-39205 CVE-2023-26268 Upstream summary: Nick Vatamane reports: Design documents with matching document IDs, from databases […]

Read more
FreeBSD 15 — p5-Image-ExifTool — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — p5-Image-ExifTool — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: Security Vulnerability found in ExifTool leading to RCE Related CVEs: CVE-2021-22204 CVE-2022-23935 Upstream summary: Debian Security tracker reports: ExifTool.pm in ExifTool before 12.38 mishandles a file special characters check, leading […]

Read more
FreeBSD 15 — chicken — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — chicken — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: chicken — multiple vulnerabilities Related CVEs: CVE-2014-9651 CVE-2015-4556 CVE-2016-6830 CVE-2016-6831 CVE-2016-9954 CVE-2017-11343 CVE-2017-6949 CVE-2017-9334 Upstream summary: CHICKEN reports: CVE-2017-6949: Unchecked malloc() call in SRFI-4 constructors when allocating in non-GC memory, […]

Read more
FreeBSD 15 — py39-markdown — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py39-markdown — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-markdown2 — regular expression denial of service vulnerability Related CVEs: CVE-2020-11888 CVE-2021-26813 Upstream summary: Ben Caller reports: markdown2 >=1.0.1.18, fixed in 2.4.0, is affected by a regular expression denial of […]

Read more
FreeBSD 15 — py310-cryptography — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on FreeBSD 15

FreeBSD 15 — py310-cryptography — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-cryptography — includes a vulnerable copy of OpenSSL Related CVEs: CVE-2023-0286 CVE-2023-23931 Upstream summary: pyca/cryptography's wheels include a statically linked copy of OpenSSL. The versions of OpenSSL included in cryptography […]

Read more
CHAT